What is CVE-2026-22317?

CVE-2026-22317 is a high-severity vulnerability in Phoenix Contact Fl Nat 2008, classified under Command Injection. CVSS score: 7.2/10. Published 2026-03-18.

How severe is CVE-2026-22317?

High severity. CVSS v3 base score is 7.2 out of 10.

RCE in Phoenix Contact Fl Nat 2008

CVE-2026-22317

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root pr…

Vulnerability class: Command Injection (OS Command Injection)

EPSS: 0.000 (9.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Phoenix Contact Fl Nat 2008 — versions 0.0.0
Phoenix Contact Fl Nat 2208 — versions 0.0.0
Phoenix Contact Fl Nat 2304-2gc-2sfp — versions 0.0.0
Phoenix Contact Fl Switch 2005 — versions 0.0.0
Phoenix Contact Fl Switch 2008 — versions 0.0.0
Phoenix Contact Fl Switch 2008f — versions 0.0.0
Phoenix Contact Fl Switch 2016 — versions 0.0.0
Phoenix Contact Fl Switch 2105 — versions 0.0.0
Phoenix Contact Fl Switch 2108 — versions 0.0.0
Phoenix Contact Fl Switch 2116 — versions 0.0.0

Weakness classification (CWE)

CWE-77 — Command Injection

References

certvde.com/de/advisories/VDE-2025-104

Frequently asked questions

What is CVE-2026-22317?: CVE-2026-22317 is a high-severity vulnerability in Phoenix Contact Fl Nat 2008, classified under Command Injection. CVSS score: 7.2/10. Published 2026-03-18.
How severe is CVE-2026-22317?: High severity. CVSS v3 base score is 7.2 out of 10.